7.5

CVE-2007-0187

F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via (1) a trailing null byte, (2) multiple leading slashes, (3) Unicode encoding, (4) URL-encoded directory traversal or same-directory characters, or (5) upper case letters in the domain name.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
F5Firepass Version5.4
F5Firepass Version5.4.1
F5Firepass Version5.4.2
F5Firepass Version5.4.3
F5Firepass Version5.4.4
F5Firepass Version5.4.5
F5Firepass Version5.4.6
F5Firepass Version5.4.7
F5Firepass Version5.4.8
F5Firepass Version5.4.9
F5Firepass Version5.5
F5Firepass Version5.5.1
F5Firepass Version5.5.2
F5Firepass Version6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.62% 0.88
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051651.html
http://www.mnin.org/advisories/2007_firepass.pdf
http://www.securityfocus.com/bid/21957
http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0141.html
http://osvdb.org/39167
http://secunia.com/advisories/23626
http://secunia.com/advisories/23640
https://tech.f5.com/home/solutions/sol6916.html
https://tech.f5.com/home/solutions/sol6924.html